djpbessems/Packer.Images
djpbessems/Packer.Images
1
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Fix var reference;Upgrade version;Add LDAP configuration
Some checks failed
continuous-integration/drone/push Build is failing
Details

Browse Source
This commit is contained in:
Danny Bessems 2023-02-13 12:04:32 +01:00
parent 7931b1ed44
commit 9e7eaf2ff7
3 changed files with 56 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
ansible/roles/firstboot/files/ansible_payload/bootstrap/roles/metacluster/tasks/k3s.yml
View File

@ -73,7 +73,7 @@
labels: labels:
ova.airgappedk8s/moref_id: "{{ moref_id }}" ova.airgappedk8s/moref_id: "{{ moref_id }}"
kubeconfig: "{{ kubeconfig.path }}" kubeconfig: "{{ kubeconfig.path }}"
register: patch_result register: k8snode_patch
until: until:
- k8snode_patch.result.metadata.labels['ova.airgappedk8s/moref_id'] is defined - k8snode_patch.result.metadata.labels['ova.airgappedk8s/moref_id'] is defined
retries: "{{ playbook.retries }}" retries: "{{ playbook.retries }}"

29
ansible/vars/metacluster.yml
View File

@ -56,7 +56,7 @@ components:
argo-cd: argo-cd:
helm: helm:
version: 5.20.1 # (= ArgoCD v2.6.0) version: 5.20.3 # (= ArgoCD v2.6.1)
chart: argo/argo-cd chart: argo/argo-cd
parse_logic: helm template . | yq --no-doc eval '.. | .image? | select(.)' | sort -u | awk '!/ /' parse_logic: helm template . | yq --no-doc eval '.. | .image? | select(.)' | sort -u | awk '!/ /'
chart_values: !unsafe | chart_values: !unsafe |
@ -105,6 +105,33 @@ components:
parse_logic: helm template . | yq --no-doc eval '.. | .image? | select(.)' | sort -u | awk '!/ /' parse_logic: helm template . | yq --no-doc eval '.. | .image? | select(.)' | sort -u | awk '!/ /'
chart_values: !unsafe | chart_values: !unsafe |
config: config:
connectors:
- type: ldap
id: ldap
name: "LDAP"
config:
host: {{ vapp['ldap.fqdn'] }}:636
insecureNoSSL: false
insecureSkipVerify: true
bindDN: {{ vapp['ldap.dn'] }}
bindPW: {{ vapp['ldap.password'] }}
usernamePrompt: "Username"
userSearch:
baseDN: OU=Administrators,OU=Useraccounts,DC=bessems,DC=eu
filter: "(objectClass=person)"
username: userPrincipalName
idAttr: DN
emailAttr: userPrincipalName
nameAttr: cn
groupSearch:
baseDN: OU=Roles,OU=Groups,DC=bessems,DC=eu
filter: "(objectClass=group)"
userMatchers:
- userAttr: DN
groupAttr: member
nameAttr: cn
enablePasswordDB: true enablePasswordDB: true
issuer: https://oidc.{{ vapp['metacluster.fqdn'] }} issuer: https://oidc.{{ vapp['metacluster.fqdn'] }}
storage: storage:

27
scripts/Update-OvfConfiguration.bootstrap.yml
View File

@ -187,6 +187,33 @@ PropertyCategories:
Configurations: '*' Configurations: '*'
UserConfigurable: true UserConfigurable: true
- Name: 6) Identity provider
ProductProperties:
- Key: ldap.fqdn
Type: string(1..)
Label: LDAP server FQDN/IP-address*
Description: The address of the LDAP server which this bootstrap appliance will perform LDAP queries against.
DefaultValue: ''
Configurations: '*'
UserConfigurable: true
- Key: ldap.dn
Type: string(1..)
Label: LDAP bind distinguished name*
Description: The username which this bootstrap appliance will use for LDAP queries.
DefaultValue: ''
Configurations: '*'
UserConfigurable: true
- Key: ldap.password
Type: password(1..)
Label: LDAP bind password*
Description: The password which this bootstrap appliance will use for LDAP queries.
DefaultValue: ''
Configurations: '*'
UserConfigurable: true
--- ---
Variables: Variables:
- Name: hostname.suffix - Name: hostname.suffix